Vulnerabilities > Sympies > Wordpress Survey AND Poll > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-02-26 | CVE-2015-2090 | SQL Injection vulnerability in Sympies Wordpress Survey and Poll 1.1.7 SQL injection vulnerability in the ajax_survey function in settings.php in the WordPress Survey and Poll plugin 1.1.7 for Wordpress allows remote attackers to execute arbitrary SQL commands via the survey_id parameter in an ajax_survey action to wp-admin/admin-ajax.php. | 7.5 |